hosts/common/users.nix (view raw)
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 |
{ pkgs, config, ... }:
{
age.secrets.apr-password.file = ../../secrets/apr-password.age;
age.secrets.root-password.file = ../../secrets/root-password.age;
users = {
mutableUsers = false;
users = {
apr = {
hashedPasswordFile = config.age.secrets.apr-password.path;
isNormalUser = true;
extraGroups = [
"wheel"
"docker"
"networkmanager"
"adbusers"
"plugdev"
];
openssh.authorizedKeys.keys = [
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGDXt8vkpi9jOp9dCjoS8u0dC4fDdgb73w8z7VNI42FB did:web:vt3e.cat"
];
shell = pkgs.fish;
};
root = {
hashedPasswordFile = config.age.secrets.root-password.path;
openssh.authorizedKeys.keys = [
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGDXt8vkpi9jOp9dCjoS8u0dC4fDdgb73w8z7VNI42FB did:web:vt3e.cat"
];
};
};
};
}
|